✅ 檢查你的版本
所有已知漏洞
—CVE-2025-8110⚠ KEVGogs vulnerable to a bypass of CVE-2024-55947 in gogs.io/gogs from 0, <= 0.13.3
—CVE-2025-8110⚠ KEVGogs vulnerable to a bypass of CVE-2024-55947 in gogs.io/gogs from 0
CRITICAL10.0CVE-2024-56731Gogs allows deletion of internal files which leads to remote command execution in gogs.io/gogs from 0, < 0.13.3
CRITICAL10.0CVE-2024-56731Gogs allows deletion of internal files which leads to remote command execution in gogs.io/gogs from 0, < 0.13.3
CRITICAL10.0CVE-2022-1884OS Command Injection in gogs in gogs.io/gogs from 0, < 0.12.8
CRITICAL10.0CVE-2022-1884OS Command Injection in gogs in gogs.io/gogs from 0, < 0.12.8
CRITICAL9.9CVE-2024-39932Gogs allows argument injection during the previewing of changes in github.com/gogs/gogs from 0, < 0.13.1
CRITICAL9.9CVE-2024-39930github.com/gogs/gogs affected by CVE-2024-39930 from 0, < 0.13.1
CRITICAL9.9CVE-2024-39931Gogs allows deletion of internal files in github.com/gogs/gogs from 0, < 0.13.1
CRITICAL9.8CVE-2024-54148Remote Command Execution in file editing in gogs in gogs.io/gogs from 0, < 0.13.1
CRITICAL9.8CVE-2024-54148Remote Command Execution in file editing in gogs in gogs.io/gogs from 0, < 0.13.1
CRITICAL9.8CVE-2022-2024Gogs OS Command Injection vulnerability in gogs.io/gogs from 0, < 0.12.11
CRITICAL9.8CVE-2022-2024Gogs OS Command Injection vulnerability in gogs.io/gogs from 0, < 0.12.11
CRITICAL9.8CVE-2022-1986OS Command Injection in file editor in Gogs in gogs.io/gogs from 0, < 0.12.9
CRITICAL9.8CVE-2022-1986OS Command Injection in file editor in Gogs in gogs.io/gogs from 0, < 0.12.9
from 0, < 0.11.91
from 0, < 0.11.91
CRITICAL9.3CVE-2026-25921Gogs: Cross-repository LFS object overwrite via missing content hash verification from 0, < 0.14.2
CRITICAL9.3CVE-2026-25921Gogs: Cross-repository LFS object overwrite via missing content hash verification from 0
CRITICAL9.1CVE-2022-1992Path Traversal in file editor on Windows in Gogs in gogs.io/gogs from 0, < 0.12.9
CRITICAL9.1CVE-2022-1992Path Traversal in file editor on Windows in Gogs in gogs.io/gogs from 0, < 0.12.9
CRITICAL9.0CVE-2022-32174Gogs vulnerable to Cross-site Scripting in gogs.io/gogs >= 0.6.5, <= 0.12.10
CRITICAL9.0CVE-2022-32174Gogs vulnerable to Cross-site Scripting in gogs.io/gogs >= 0.6.5
HIGH8.8CVE-2024-55947Path Traversal in file update API in gogs in gogs.io/gogs from 0, < 0.13.1
HIGH8.8CVE-2024-55947Path Traversal in file update API in gogs in gogs.io/gogs from 0, < 0.13.1
HIGH8.8CVE-2024-44625Unpatched Remote Code Execution in Gogs in gogs.io/gogs from 0, < 0.13.2
HIGH8.8CVE-2024-44625Unpatched Remote Code Execution in Gogs in gogs.io/gogs from 0
HIGH8.8CVE-2022-0415Unrestricted Upload of File with Dangerous Type in Gogs in gogs.io/gogs from 0, < 0.12.6
HIGH8.8CVE-2022-0415Unrestricted Upload of File with Dangerous Type in Gogs in gogs.io/gogs from 0, < 0.12.6
from 0
from 0, < 0.14.2
HIGH8.6CVE-2018-15192Gogs and Gitea SSRF Vulnerability in code.gitea.io/gitea from 0, < 0.12.0
HIGH8.6CVE-2018-15192Gogs and Gitea SSRF Vulnerability in code.gitea.io/gitea from 0, < 0.12.0
HIGH8.3CVE-2022-1285Server-Side Request Forgery in gogs webhook in gogs.io/gogs from 0, < 0.12.8
HIGH8.3CVE-2022-1285Server-Side Request Forgery in gogs webhook in gogs.io/gogs from 0, < 0.12.8
HIGH8.2CVE-2022-0871Gogs vulnerable to improper PAM authorization handling in gogs.io/gogs from 0, < 0.12.5
HIGH8.2CVE-2022-0871Gogs vulnerable to improper PAM authorization handling in gogs.io/gogs from 0, < 0.12.5
HIGH8.1CVE-2022-1993Path Traversal in Git HTTP endpoints in Gogs in gogs.io/gogs from 0, < 0.12.9
HIGH8.1CVE-2022-1993Path Traversal in Git HTTP endpoints in Gogs in gogs.io/gogs from 0, < 0.12.9
HIGH7.7CVE-2024-39933Gogs allows argument injection during the tagging of a new release in github.com/gogs/gogs from 0, < 0.13.1
from 0, < 0.11.80-0.20181218063808-ff93d9dbda5c
from 0, <= 0.13.3
from 0
>= 0.3.1, < 0.5.8
>= 0.3.1, < 0.5.8
MEDIUM6.5CVE-2026-23633Gogs has arbitrary file read/write via Path Traversal in Git hook editing in gogs.io/gogs from 0, < 0.13.4
MEDIUM6.5CVE-2026-23633Gogs has arbitrary file read/write via Path Traversal in Git hook editing in gogs.io/gogs from 0
MEDIUM6.5CVE-2026-23632Gogs user can update repository content with read-only permission in gogs.io/gogs from 0
MEDIUM6.5CVE-2026-23632Gogs user can update repository content with read-only permission in gogs.io/gogs from 0, < 0.13.4
MEDIUM6.5CVE-2026-22592Gogs has a Denial of Service issue in gogs.io/gogs from 0, < 0.13.4
MEDIUM6.5CVE-2026-22592Gogs has a Denial of Service issue in gogs.io/gogs from 0
>= 0.3.1, < 0.5.8
MEDIUM6.3CVE-2025-47943Gogs XSS allowed by stored call in PDF renderer in gogs.io/gogs from 0, < 0.13.3-0.20250608224432-110117b2e5e5
MEDIUM6.3CVE-2025-47943Gogs XSS allowed by stored call in PDF renderer in gogs.io/gogs from 0, < 0.13.3-0.20250608224432-110117b2e5e5
from 0, < 0.12.0
from 0, < 0.12.0
from 0, < 0.12.0
from 0, < 0.12.0
MEDIUM5.4CVE-2022-31038Cross-site Scripting vulnerability in repository issue list in Gogs in gogs.io/gogs from 0, < 0.12.9
MEDIUM5.4CVE-2022-31038Cross-site Scripting vulnerability in repository issue list in Gogs in gogs.io/gogs from 0, < 0.12.9
MEDIUM5.4CVE-2022-1464Cross-site Scripting in Gogs in gogs.io/gogs from 0, < 0.12.7
MEDIUM5.4CVE-2022-1464Cross-site Scripting in Gogs in gogs.io/gogs from 0, < 0.12.7
MEDIUM5.3CVE-2026-26196Gogs: Access tokens get exposed through URL params in API requests from 0, <= 0.13.3
MEDIUM5.3CVE-2026-26196Gogs: Access tokens get exposed through URL params in API requests from 0
from 0, < 0.12.0
from 0, < 0.12.0
MEDIUM5.0CVE-2022-0870SSRF in repository migration in gogs.io/gogs from 0, < 0.12.5
MEDIUM5.0CVE-2022-0870SSRF in repository migration in gogs.io/gogs from 0, < 0.12.5
—CVE-2026-26195Gogs: Stored XSS in branch and wiki views through author and committer names from 0
—CVE-2026-26195Gogs: Stored XSS in branch and wiki views through author and committer names from 0, <= 0.13.3
from 0
from 0, < 0.14.2
from 0, < 0.14.1
from 0
—CVE-2026-25232Gogs has a Protected Branch Deletion Bypass in Web Interface in gogs.io/gogs from 0
—CVE-2026-25232Gogs has a Protected Branch Deletion Bypass in Web Interface in gogs.io/gogs from 0, < 0.14.1
—CVE-2026-25229Gogs has an Authorization Bypass Allows Cross-Repository Label Modification in Gogs in gogs.io/gogs from 0
—CVE-2026-25229Gogs has an Authorization Bypass Allows Cross-Repository Label Modification in Gogs in gogs.io/gogs from 0, < 0.14.0
—CVE-2026-25120Gogs Allows Cross-Repository Comment Deletion via DeleteComment in gogs.io/gogs from 0, < 0.14.0
—CVE-2026-25120Gogs Allows Cross-Repository Comment Deletion via DeleteComment in gogs.io/gogs from 0
—CVE-2025-65852Gogs has authorization bypass in repository deletion API from 0, < 0.13.4
—CVE-2025-65852Gogs has authorization bypass in repository deletion API from 0
—CVE-2026-24135Gogs vulnerable to arbitrary file deletion via Path Traversal in wiki page update in gogs.io/gogs from 0, < 0.13.4
—CVE-2026-24135Gogs vulnerable to arbitrary file deletion via Path Traversal in wiki page update in gogs.io/gogs from 0
—CVE-2025-64175Gogs Vulnerable to 2FA Bypass via Recovery Code in gogs.io/gogs >= 0.11.19
—CVE-2025-64175Gogs Vulnerable to 2FA Bypass via Recovery Code in gogs.io/gogs >= 0.11.19, < 0.13.4
—CVE-2025-64111Gogs's update .git/config file allows remote command execution in gogs.io/gogs from 0
—CVE-2025-64111Gogs's update .git/config file allows remote command execution in gogs.io/gogs from 0, < 0.13.4
from 0, < 0.12.8
from 0, < 0.12.8
>= 0.3.1, < 0.5.8
>= 0.3.1, < 0.5.8